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TTR 


Time To Remediate 


e y 
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True Measure of Effectiveness of Security Program 
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Digital A 
Transformation |, aj 
is accelerating 


Rapid Adoption of New Processes 
and Technologies 


Elastic, 


Kafka, 
e Cassandra, 
Flink, 
afim Spark, etc. 
DevOps 


Infrastructure is Increasingly Hybrid 
© 


Cloud, bare-metal, 
Containers, Endpoints, © 
Mobility, OT, loT, APIs, 

etc. 


Security Challenges 


Increasing surface area 
Decreasing visibility 
Increasing TTR 


Reduce TTR 


Real-time context with continuous 
data collection 


Powerful analytics platform to 
correlate multiple datapoints and 
detect issues 


Real-time response capabilities 


Powerful decision engine to 
transparently orchestrate the 
response 
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Home Security Solutions 


Nest Home Security Sensors 
Nest Aware Subscription 


Enterprise Security Tools Today 


Point solutions 


Multiple agents 
Multiple consoles e 9 © 


Integrations? 
Integrate point solutions 


But then too many point to 
point integrations 


Doesn't provide full context 


The Rise of the SIEM 


Tie together point solutions 
But still point solutions! A- 
+ UEBA + ML/AI 


Detection? Sort of with low confidence 


What About Response? 


Additional point solutions to 
respond to 


Well now we need new app - SOAR 


Ties point solutions together - 
again! 


Evolution of the Qualys Cloud 
Platform 
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Remember those 19+ Apps? 


Evolution of the Qualys 
Cloud Platform 


Unifying IT, Security & Compliance 


Consolidating the Stack: reducing 
point solutions, their agents and 
consoles 


Reduce TTR 
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Best TTR ever? 


Cloud & Container Leading the Way 


DevOps in CI/CD 


Azure built-in security p" «+ 


Evolution of the Qualys 
Cloud Platform 


Cloud-based platform build into 
your DevOps 


Qualys Next-Gen Initiatives 


Next-Gen Initiatives 2020 


Now introducing Qualys 
Respond 


Adding Security Analytics & 
Orchestration 


Comprehensive Response 
Capabilities 


773 


Covering servers, endpoints, mobile, network, 
web applications, cloud & containers 


Security Analytics, 
Correlation & Data Lake 


Qualys built-in! 
Plug-n-play analytics 


Powerful cloud-based 
correlation and analytics of 
known & unknown threats 


SOAR 


Qualys built-in! 


Granular flexible playbooks 


Quickly respond with complex 
actions 


Advanced Correlation & Analytics 


ML/AI Service Orchestration & Automation UEBA 
Patterns | Outlier | Predictive SoC Integration | Playbooks | Response User & Entity Behavior Analytics 
Threat Hunting Security Analytics Advanced Correlation 
Search | Exploration | Behavior Graph Anomaly | Visualization | Dashboard Actionable Insights | Out-of-box Rules 


Qualys Security Data Lake Platform 


Data Ingestion | Normalization | Enrichment | Governance 
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Network Security Server End Point Qualys Apps Apps Cloud Users 


Qualys Quick Connectors 


loT 
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Evolving Qualys Cloud Platform to the 
Next Level 


9 


Single platform for detection & response with 
built-in orchestration 


21 


One solution to discover, assess, prioritize and patch critical vulnerabilities 
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VMDR with Built-in 
Orchestration 
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New prioritization 
engine 


Combining real-time 
threat intelligence, asset 
context and machine 
learning 


Accurately pinpoint 
patches for most lethal 
vulnerabilities instantly 


End-to-end workflows & 
real-time, interactive 
dashboards 
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ASSETS 
Tags 
| Finance | Marketing | Human Resources | Engineering 
| operations 

VULNERABILITIES 


1 3 43 High Med 
(310) (320) 


Total Service Level 
Vuln 


erabilities Agreement Pre-SLA 0-15+ Days 16-30 Days 
122) (108) 


(260) (122) 


VMDR 


Hosts 


319 


Low 
(713) 
31-60Days 61-90 Days 90+ Days 
(412) (211) (230) 


Qualys Threat Prioritization 


[5] Zero Day o High Lateral Movement [2] Active Attacks 
Machine Learning Probability ® Exploit Kit Available o DOS External 


O Easily Exploitable 


o High Data Loss 


(2) Unpatchable © Vulnerable to DOS © Public Exploit (13) Wormable 


Prioritized Vulnerabilities 


Slax 


2.75% of Total Vulnerabilities 


QD CVE TITLE 


91534 CVE-2019-0708 Microsoft Windows Remote Desktop Services Remote Code Execution... 


371361 CVE-2018-15982 Adobe Security Update for Flash Player (APSB18-42) 
1 more 


Deploy Patches 


5. 38 hosts 


On 1 0% of total Hosts 


Patch Now 


PRIORITIZATION SCORE HOSTS 
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Qualys VMDR 


Fastest platform to go from discovering new 
assets to patching it's most critical vulnerabilities 
with contextual prioritization 


PERIOD! 


Cloud Platform Architecture 


Out-of-Band Sensors 
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Cloud . Internet 
Agent e Scanners 
= $ = 
e e e 
e o 
e e 
Passive ,7 
Scanners p o FEM V : APIs 
o e 
o e 
e o e. 
e D . 
Virtual = MA Scanner 
Scanners il Appliances 


Cloud Connectors 
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Physical 


Legacy data centers 
Corporate infrastructure 


Continuous security and 
compliance scanning 


Qualys Sensor Platform 
Scalable, self-updating & centrally managed 
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Virtual 


Private cloud 
infrastructure 


Virtualized Infrastructure 


Continuous security and 
compliance scanning 
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Cloud/Container 
Commercial laaS & PaaS 
clouds 


Pre-certified in market 
place 


Fully automated with 
API orchestration 


Continuous security and 
compliance scanning 
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Cloud Agents 
Light weight, multi- 
platform 


On premise, elastic 
cloud & endpoints 


Real-time data collection 


Continuous evaluation 
on platform for security 
and compliance 


Passive 


Passively sniff on 
network 


Real-time device 
discovery & 
identification 


Identification of APT 
network traffic 


Extract malware files 
from network for 
analysis 
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API 


Integration with Threat 
Intel feeds 


CMDB Integration 


Log connectors 


Qualys Cloud Platform 


18+ products providing comprehensive suite 
of security solutions 
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12,200+ customers 


8 shared cloud platforms across North . o 
America, Europe & Asia © 

85+ private clouds platforms deployed | 

globally... on-prem, AWS, Azure, GCP x oO 

19+ PB storage and 27000 cores aS 
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Qualys Cloud Platform 


3* billion IP scans/Audits per year 


50,000+ Scanner Appliances S 


28 million Cloud Agents 

2+ trillion security events annually 
5+ billion messages daily across Kafka O 
clusters = E. 


3.24 trillion data points indexed in our 
Elasticsearch clusters 
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Continued Platform 
Expansion 


ICS OT environments 


SaaS security & compliance 


More DRs Coming 
Soon 


Endpoint Detection & Response 
Cloud Detection & Response 
Container Detection & Response 
Mobile Device Detection & Response 
SaaS Security Detection & Response 
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